Hi peeps.
Newb here.
I have kali nethunter installed as chroot. I can't get certain functionality. I.e browsing websites and openvpn connections for example
I believe this is interface related, I.e using the wrong interface. Openvpn complains the default gateway is not set.
Firstly, has anyone had similar Experiance, secondly - would rooting the tab and flashing nethunter directly onto it solve these problems? (And could you explain why?)
Did you ever get nethunter to work?
Where did you find the apk to install it?
Using termux (play store),install wget and download the nethunter software from Offensive Security. (Youtube)
Functionality is scarce and it's a real pain trying to do this.
I would recommend buying a raspberry pi and installing kali onto it running it headless. Use a tablet to connect via vnc. Vastly more functionality with a fraction of the headache and frustration again this is instructed on YouTube
Alternatively, just get a tablet and get a subscription to proving grounds or hackthebox who offer Web based kali use on their machines if this is just for study.
M0ng0l said:
Using termux (play store),install wget and download the nethunter software from Offensive Security. (Youtube)
Functionality is scarce and it's a real pain trying to do this.
I would recommend buying a raspberry pi and installing kali onto it running it headless. Use a tablet to connect via vnc. Vastly more functionality with a fraction of the headache and frustration again this is instructed on YouTube
Alternatively, just get a tablet and get a subscription to proving grounds or hackthebox who offer Web based kali use on their machines if this is just for study.
Click to expand...
Click to collapse
So i am using Termux and have succesfully setup storage however,
when i use <pkg install wget>
i receive error <unable to locate package wget>
I have also tried <apt update> and get severall errors
aswell as <apt upgrade> and get 0 upgrades
any suggestions?
derrickdroid said:
So i am using Termux and have succesfully setup storage however,
when i use <pkg install wget>
i receive error <unable to locate package wget>
I have also tried <apt update> and get severall errors
aswell as <apt upgrade> and get 0 upgrades
any suggestions?
Click to expand...
Click to collapse
have you tried <pkg update> ?
asdplokk said:
have you tried <pkg update> ?
Click to expand...
Click to collapse
The attached screenshot are the errors I am getting.
It seems to me something about the mirrors has changed recently based on https://github.com/termux/termux-packages/wiki/Mirrors
i think u can get rid of all of your sources other than termux-main/root/x11
So if you google your question, you'll find an answer.
Update the repositories, google how to update repos for termux
Get a raspberry pi and a cheap tablet. You still use a tab but the functionality is light years ahead of what you can achieve while using nethunter alone.
I'll be making a post soon on configuring a pi you can access via the internet with a tablet
M0ng0l said:
Using termux (play store),install wget and download the nethunter software from Offensive Security. (Youtube)
Functionality is scarce and it's a real pain trying to do this.
I would recommend buying a raspberry pi and installing kali onto it running it headless. Use a tablet to connect via vnc. Vastly more functionality with a fraction of the headache and frustration again this is instructed on YouTube
Alternatively, just get a tablet and get a subscription to proving grounds or hackthebox who offer Web based kali use on their machines if this is just for study.
Click to expand...
Click to collapse
BRO u just blew my mind, vnc to the rasp pi
Related
Hi all of you, XDA fans!
After googling and looking in XDA forums, I was not able to find any ways to port linux apps to Android and was wondering if it was even possible.
Knowing that Android runs on 2.6.25 kernel, I thought that maybe it was possible.
I recently purchased a G1, successfully rooted it, and now am looking for ways to port linux apps to Android.
Is there a way to build apps from source code on Android, using the build tools provided with desktop distros? (I am using Ubuntu atm).
Anybody want to share some lights on this?
I'll keep you posted if I find anything intresting...
XDA ROCKS!!!
I'm looking into this myself, especially with respect to vlc, mplayer, and some console emulators...all of which have been compiled for ARM before, most successfully on the GP2X handheld.
Cross-compiling apps on an Ubuntu system is possible, but I'm not sure how well compiled apps will work with the Android framebuffer. There's also no x-windows system, so you know graphical apps that need it won't cut it at all.
Let us know what you find out.
Found this: Debian on Android
Hey i found this, Thought it might be intresting to look into this.
Debian & Android Together on G1
It's a guide to have Debian running alongside android, at least for what I understand...
I haven't tried yet since I have rooted rc8 and it's written for rc29/Mrc30, but that seems like a good solution.
Would be nice to be able to compile on android rather than on eclipse on ubuntu...
I've got no programming knowledge, that's why I'm looking for a solution allowing to compile directly on android...
"There's also no x-windows system, so you know graphical apps that need it won't cut it at all."
I was thinking as an experience to compile aircrack-ng, and it has no gui... The hardware might not support it but tha g1 might be able to handle it.
Yeah I wanted to compile the No-IP app for the phone so I could know what the IP address of my phone was on Tmo's network. That way I could run a webserver on my phone (apache anyone?). Does Tmo have firewalls in place to prevent this type of thing?
efbenson said:
Yeah I wanted to compile the No-IP app for the phone so I could know what the IP address of my phone was on Tmo's network. That way I could run a webserver on my phone (apache anyone?). Does Tmo have firewalls in place to prevent this type of thing?
Click to expand...
Click to collapse
enable telnetd from terminal and see if you can telnet from your computer to it via 3G (i.e. your wireless computer ---> G1)
My G1's edge ip is 25.97.51.2XX tried to telnet in, host unreachable. Did a traceroute from both my web server and home computer, both showed that the 3rd hop and all hops after that did not respond, and as expected ICMP echo (ping) sent to the phone timed out. Therefor we can i think say that T-mobile was not dumb and put a firewall up as any network administrator would. Gonna double check the IP of my G1 and i'll get back if it figure out my ip is different or something.
EDIT: pinged my router this time, got the IP 208.54.4.61, still same story times out and my G1 died so im going to reboot it and plug it in to try again.
well i'm sure t-mobile was wiser on that end, but did you try telnetting on port 80? also if you were to get a webserver running on your g1, you could always just use a non-standard port (81?) and just use a service like dyndns to control the port redirect, since i'm assuming they're already managing the dyndns updates.
rak500 said:
Hey i found this, Thought it might be intresting to look into this.
Debian & Android Together on G1
It's a guide to have Debian running alongside android, at least for what I understand...
I haven't tried yet since I have rooted rc8 and it's written for rc29/Mrc30, but that seems like a good solution.
Click to expand...
Click to collapse
I actually just got Deb working alongside Android (not terribly difficult but I did have some wonky-ness getting ext2.ko insmodded).
Having RC30 on my phone makes me really miss ADP1
deprecate said:
I actually just got Deb working alongside Android (not terribly difficult but I did have some wonky-ness getting ext2.ko insmodded).
Having RC30 on my phone makes me really miss ADP1
Click to expand...
Click to collapse
If you have JF 1.3+ you don't need to insmod ext2.ko. Just type "busybox insmod ext2".
deprecate said:
I actually just got Deb working alongside Android (not terribly difficult but I did have some wonky-ness getting ext2.ko insmodded).
Having RC30 on my phone makes me really miss ADP1
Click to expand...
Click to collapse
Do you think I can have it working on my rooted UK RC8?
I want to try it but it seems the configuration are slightly different for RC19 and RC29 according to the tutorial, so I thought it might be different on RC8 too.
I tried the web server in the market, didn't seem to work on edge
I'm not quite sure but I believe that T-mobile's VPN add-on might provide an externally accessible IP.
does anyone know if you can compile samba for the g1 ?
I've never dealt with linux on anything besides x86 and x64, so forgive me if this is stupid, but what about running gentoo on the G1 here? Seems to me that portage for ARM might be a little bit better for the G1 than the Debian repositories.
Although, NONE of us will be excited about having our G1 churning away for hours/days just to get Xorg compiled, as well as the headaches associated with installing and configuring gentoo.
I'm sure someone's thought of this, and Debian is pretty great anyway, just thought I'd put this out there.
kash04 said:
does anyone know if you can compile samba for the g1 ?
Click to expand...
Click to collapse
I am using Samba by way of Debian. So, yeah, it's possible.
DDM123 said:
I've never dealt with linux on anything besides x86 and x64, so forgive me if this is stupid, but what about running gentoo on the G1 here? Seems to me that portage for ARM might be a little bit better for the G1 than the Debian repositories.
Although, NONE of us will be excited about having our G1 churning away for hours/days just to get Xorg compiled, as well as the headaches associated with installing and configuring gentoo.
I'm sure someone's thought of this, and Debian is pretty great anyway, just thought I'd put this out there.
Click to expand...
Click to collapse
It's not stupid. If it works for you and is to your liking, go for it. It is debatable, however, whether portage (as good as it is) is any better for the G1 than Debian's packaging system. Packages compiled for the ARM architecture are already optimized for ARM processors. There wouldn't be as much self-compiling gain in this architecture as there would be optimizing between i386, i686, amd-64, etc. You'd be doing a lot of work and wasting a lot of time having portage compile your apps...and you'd have very little pluses to show for it.
Oh ok, I just thought that many apps were being compiled manually and portage might make some of that easier. I figured there wouldn't be any speed gains over Debian or other binary-based distros, and the barebones installation of gentoo is absolute hell, but I hoped it might get us into full-blown X quicker somehow.
It could definitely work with Portage. Keep in mind, though, that apt-get under Debian *can* download and build the source into a package automatically as well.
Web Server on TMO
Hey guys,
I'm new on XDA, getting my galaxy S tomorrow, I was a nokia fan up untill maemo 5 and the N900...
Anyway, one thing to remember is - Cellular Operators usually manage their own IP address pools, they don't give "Real" IP addresses to cellular phone, but rather use NAT services and all sort of nasty hacks to the IP system.
Therefore, in order for port 80 (http web server) to work on your server, it's not enough to just run it and get the IP, you also need the provider/operator to forward TCP packets coming to your External IP on port 80 to be forwarded to your internal IP > to your phone.
This, will never happen. If it will, you will get charged heavily for this as it will increase traffic and allow upstream traffic to your phone, and also risk your phone to potential hackers.
Edit : And I just noticed I resurrected an almost 2 years old thread Oopsy.
efbenson said:
Yeah I wanted to compile the No-IP app for the phone so I could know what the IP address of my phone was on Tmo's network. That way I could run a webserver on my phone (apache anyone?). Does Tmo have firewalls in place to prevent this type of thing?
Click to expand...
Click to collapse
get dyndns account there is an app on the market that will sync it.
(Ergh. Link won't come through since I'm new. The tutorial to install Ubuntu on the Nexus One on the nexusonehacks website is the one i'm referring to)
Following this tutorial, Ubuntu installed perfectly on my Mez. No problems whatsoever! Just need to root the phone (I rooted with z4root if it matters).
Couldn't find any info on the MezBuntu combo, so I figured I'd post my experience with it here.. if it's already been known, sorry. Haha!
First post here btw
Post the link to this if you can or type it if you have problems as I would like to look at this thanks.
http://nexusonehacks.net/nexus-one-hacks/how-to-install-ubuntu-on-your-nexus-oneandroid/
-ignore, forum is being retarded-
I've spent a lot of time this evening getting some stuff added into this and tweaked tonight. I'm going to keep working a little more on this and then host my own copy so people don't have to jump through so many hoops to use it.
I can't post the link since I have less than 8 posts.. anyways, msullivan, I had no trouble with it at all. Didn't have to do any changes whatsoever. If you mean making it less complicated, then ignore me. Haha
Do you need adb to do it or can I just do it through android terminal?
Using my computers a pain lol
Sent from my SPH-D700 using XDA App
I'm assuming you need ADB, but it might work through the terminal.. I did it through ADB and had no problems whatsoever so I'd do it ADB just to be safe.
You don't need ADB, you can do most of it through a terminal emulator app. First enable WiFi and find out the WiFi IP address. Follow all the guide steps until you get to the part about finally seeing "[email protected]:/#"
Then issue the commands:
Code:
apt-get update
apt-get install openssh-server nano
service ssh start
passwd root
After that last command you'll be asked to set a password for the root account, do something simple to type on the android keyboard, like 'qwerty'.
Now go to a computer and SSH into your phone via PuTTY or whatever your favorite SSH client app is. Now it will be WAY easier to install things via apt, get the GUI running from the howto guide, etc etc. Also then you'll have a real file editor (nano) to work inside of, so you can edit the config files (such as 'bashrc' without having to do very complicated cat commands. This is how I performed my setup and it worked flawlessly. Note that if you set it up to create a VNC session for you automatically in the bashrc, you'll really feel the slowdown. In my tweaked version (which, like I said, I'll release on here soon), I have created a simple prompt on login that asks if you want to create a VNC session or not. That way if you are just there for command-line you don't have to eat the phone's RAM away.
msullivan said:
You don't need ADB, you can do most of it through a terminal emulator app. First enable WiFi and find out the WiFi IP address. Follow all the guide steps until you get to the part about finally seeing "[email protected]:/#"
Then issue the commands:
Code:
apt-get update
apt-get install openssh-server nano
service ssh start
passwd root
After that last command you'll be asked to set a password for the root account, do something simple to type on the android keyboard, like 'qwerty'.
Now go to a computer and SSH into your phone via PuTTY or whatever your favorite SSH client app is. Now it will be WAY easier to install things via apt, get the GUI running from the howto guide, etc etc. Also then you'll have a real file editor (nano) to work inside of, so you can edit the config files (such as 'bashrc' without having to do very complicated cat commands. This is how I performed my setup and it worked flawlessly. Note that if you set it up to create a VNC session for you automatically in the bashrc, you'll really feel the slowdown. In my tweaked version (which, like I said, I'll release on here soon), I have created a simple prompt on login that asks if you want to create a VNC session or not. That way if you are just there for command-line you don't have to eat the phone's RAM away.
Click to expand...
Click to collapse
What exactly did you do to get your tweaked version? Just wondering as I might give this a try
droidzach said:
What exactly did you do to get your tweaked version? Just wondering as I might give this a try
Click to expand...
Click to collapse
I didn't 'get' it, I just added some stuff like auto-starting SSH and a prompt asking whether or not you want a VNC service started. If you or others are still interested I can probably get it posted.
msullivan said:
I didn't 'get' it, I just added some stuff like auto-starting SSH and a prompt asking whether or not you want a VNC service started. If you or others are still interested I can probably get it posted.
Click to expand...
Click to collapse
Yeah that's what I meant. Ill see if I get around to getting ubuntu running and play with it then maybe I'll ask you what you did if I'm gonna actually use it. Thanks
Im curious wether or not there is a way for me to have a chrooted ubuntu on my transformer...? I saw something on youtube where they did it on a galaxy 10.1, and in the comments the maker of the video said it does work on the transformer.
But i am curious if anyone has tried it and is certain whether or not it work.
if this method is not possible, are there any other methods with similar results...?
... really? search before you post
http://forum.xda-developers.com/showthread.php?t=1145601
mrevankyle said:
... really? search before you post
http://forum.xda-developers.com/showthread.php?t=1145601
Click to expand...
Click to collapse
i read that, but dont completely able to understand it... could someone help me out with installing it?
The easist thing is to download Linux Installer off the market. I found that Debian (ARMv5) offers better package choices than Ubuntu (ARMv7) in that case. I have mine running off /data/local/mnt/Linux with Debian stable.
Spidey01 said:
The easist thing is to download Linux Installer off the market. I found that Debian (ARMv5) offers better package choices than Ubuntu (ARMv7) in that case. I have mine running off /data/local/mnt/Linux with Debian stable.
Click to expand...
Click to collapse
i attempted this, i managed to get debian but it did not have a gui.... How would i go about installing one.?
To get a GUI going that route you basically set it up to use VNC for running X stuff and then connect via an Android VNC client; I don't recall the name of the server but there were multple links on Google when I searched back in September.
I don't personally need X along side Android and the chroot, so I don't have it set up.
I have the ott tv box m8, which is the square variant, which I don't really use any more. Since people are converting their Raspberry Pi into a server, I thought I'd give it a go on the android box.
I managed to root the device, downloaded the Debian iso image file, but have no idea how to proceed from here.
Anyone kind enough to point me in the right direction to install it?
You won't be able to completely remove Android, but you can run Linux off of its kernel.
Is your device rooted? If so Linux Deploy can do the trick.
What would you use this server for? Chances are there's an app for it. You may want to check out Servers Ultimate Pro.
jerbear294 said:
You won't be able to completely remove Android, but you can run Linux off of its kernel.
Is your device rooted? If so Linux Deploy can do the trick.
What would you use this server for? Chances are there's an app for it. You may want to check out Servers Ultimate Pro.
Click to expand...
Click to collapse
Personal sites mostly, nothing heavy. I'd like to access them over the Internet though.
I do have root access, unfortunately the app you suggested is not free. Is there another alternative?
I'm also not very experienced when it comes to flashing on Android hardware. What's the reason for not being able to remove Android and install Debian/Ubuntu on it?
ScarfaceMT said:
Personal sites mostly, nothing heavy. I'd like to access them over the Internet though.
I do have root access, unfortunately the app you suggested is not free. Is there another alternative?
I'm also not very experienced when it comes to flashing on Android hardware. What's the reason for not being able to remove Android and install Debian/Ubuntu on it?
Click to expand...
Click to collapse
The bootloader is not made for booting Ubuntu. It boots a modified Linux kernel that launches Android.
There is a lite version of Servers Ultimate. I'm not aware of what the restrictions are.
Amazon has deals on Servers Ultimate Pro a lot. I got it when it was free a couple weeks ago.
Update (5/18/2019)
Since the first tool was released, HappyZ has improved many features so I think I can just refer to
* HappyZ's rooting guide: https://github.com/HappyZ/dpt-tools/wiki/The-Ultimate-Rooting-Guide
- The only thing I want to add as Windows user is (because the guide is for Mac/Linux users) it gets much easier if you use Linux terminal like cygwin, and the port name should be something like COM# where # can be found in Device Manager by comparing before/after you attach the device.
* HappyZ's upgrade guide: https://github.com/HappyZ/dpt-tools/wiki/The-Upgrade-Guide (Recommend to read this before/after you update the new firmware.)
You may donate a cup of coffee to him there Thanks to all others who contributed a lot.
--
Update (12/02/2018) -- These are outdated.
Finally we manage to root the device! Many thanks to all of your efforts.
Just refer to HappyZ's well written guide: https://github.com/HappyZ/dpt-tools
For whom have never used python like me (and probably using Windows):
(1) Install Python 3 and add it to PATH.
(2) Install MINGW64 and run scripts here instead of Powershell due to xxd issue if you are on Windows.
(2) pip httpsig pyserial on bash.
(3) Download HappyZ's dpt-tools and unzip.
(4* this issue is fixed by HappZ)
(5) Follow HappyZ's guide. You should execute dpt-tools.py in the folder you unzipped to use get-su-bin because of how the script is written.
Some suggestions after rooting (let me know if you have better ideas):
Here is my setup: install "E-ink Launcher" and "Multi action home button" using adb install.
Use adb shell am start -a android.intent.action.MAIN to change the main launcher to your launcher.
Then change the setting of Multi Action Home button (say, the height should be large to be visible in the bottom) and assign its function to be Home for click and Back for double-click.
Whenever you want to use Sony's apps (these are good for pdf markup), just push the home button to open the pop-up menu.
Otherwise, touch the Multi Action Home Button to access to other Android apps. So far I've never experience any crash.
Yet more tips:
Some complain fonts are too small after installing generic apps.
adb shell wm density 320 changes your DPI by 2 times (160 is a default value.) EDIT: I found 200 is quite enough that does not distort Sony apps too much.
My application is using "Tasker" to execute the above code when specific apps are open and execute wm density reset when the apps are closed.
The reason why we cannot change the global DPI is sadly because it makes the default apps by Sony so awkward.
Alternatively, I could successfully install Xposed to try App Settings but this app crashed.
You can also install Gboard (but it has no hide button, so prepare with virtual back button) if you need another keyboard.
Enjoy your DPT devices
--
Sony recently released a new digital paper device DPT-RP1, apparently using their own linux firmware but underlying on Android 5.1.1. Few weeks ago, some Chinese successfully hacked it to jailbreak for third-party apps (without changing the original firmware), but they don't share any information to sell those hacked devices. I'm willing to pay for it, but it is too risky to send my device to China so I'm trying to root it by myself.
I don't know much about this world, but I found some information that might be helpful. It uses Marvell A140 IoT Processor a.k.a. PXA1908. There are two Android smartphones (as the same version 5.1.1) with this chip - Samsung Xcover 3 and Samsung Galaxy Grand Prime. Fortunately, they have been both rooted in the past here.
Is this information really helpful to root my device? If so, is there any way to apply the previous methods to easily jailbreak DPT-RP1? I think the problem here is that it does not look like Android at all, so has no setting menu or developer tools. And not sure how to enter to the recovery mode since it only has two buttons - power/menu.
I'd appreciate any help or advice. Thanks!
And here you can find source codes.
oss.sony.net/Products/Linux/dp/DPT-RP1.html
sartrism said:
Sony recently released a new digital paper device DPT-RP1, apparently using their own linux firmware but underlying on Android 5.1.1. Few weeks ago, some Chinese successfully hacked it to jailbreak for third-party apps (without changing the original firmware), but they don't share any information to sell those hacked devices. I'm willing to pay for it, but it is too risky to send my device to China so I'm trying to root it by myself.
I don't know much about this world, but I found some information that might be helpful. It uses Marvell A140 IoT Processor a.k.a. PXA1908. There are two Android smartphones (as the same version 5.1.1) with this chip - Samsung Xcover 3 and Samsung Galaxy Grand Prime. Fortunately, they have been both rooted in the past here.
Is this information really helpful to root my device? If so, is there any way to apply the previous methods to easily jailbreak DPT-RP1? I think the problem here is that it does not look like Android at all, so has no setting menu or developer tools. And not sure how to enter to the recovery mode since it only has two buttons - power/menu.
I'd appreciate any help or advice. Thanks!
Click to expand...
Click to collapse
You must be an iPhone user that isn't familiar with android. Jailbreak in is an Apple thing, not an android thing.
In android it's called "rooting" and it isn't quite the same thing as jailbreaking an Apple device.
This device does not at all seem to be worth the price, especially considering the limitations it has. What a waste of hardware.
I would assume that you could port something from one of those other devices to work on yours but it really depends on how your hardware is designed compared to those devices.
Does your device have a typical bootloader like other android devices?
Is the bootloader unlocked?
If it is locked, can it be unlocked?
Does the device use fastboot or does it have a flash mode that is used with a specific PC flashtool?
If it is unlocked or if you can unlock it and it has a flash mode that can actually be used, you might be able to port a custom recovery from one of the devices you named then use that recovery to somehow root the device. If the device can't install android apps then it would probably involve using adb to root the device.
I DO NOT PROVIDE HELP IN PM, KEEP IT IN THE THREADS WHERE EVERYONE CAN SHARE
Droidriven said:
You must be an iPhone user that isn't familiar with android. Jailbreak in is an Apple thing, not an android thing.
In android it's called "rooting" and it isn't quite the same thing as jailbreaking an Apple device.
This device does not at all seem to be worth the price, especially considering the limitations it has. What a waste of hardware.
I would assume that you could port something from one of those other devices to work on yours but it really depends on how your hardware is designed compared to those devices.
Does your device have a typical bootloader like other android devices?
Is the bootloader unlocked?
If it is locked, can it be unlocked?
Does the device use fastboot or does it have a flash mode that is used with a specific PC flashtool?
If it is unlocked or if you can unlock it and it has a flash mode that can actually be used, you might be able to port a custom recovery from one of the devices you named then use that recovery to somehow root the device. If the device can't install android apps then it would probably involve using adb to root the device.
Click to expand...
Click to collapse
Thanks for suggesting a general principle! I just use the word jailbreaking not because I'm an iPhone user. What I actually want to do as the first step is not rooting an android system, but revealing it from the current customized linux system. Rooting is the next step if necessary. If the word choice is still not accurate and bothers you, I apologize.
It has apparently no typical bootloader, and neither PC nor adb recognize it as an android device. In fact, direct USB file transfer is blocked so I need to use Sony's designated software. But an android system surely coexists according to the hacker who already rooted it.
sartrism said:
Thanks for suggesting a general principle! I just use the word jailbreaking not because I'm an iPhone user. What I actually want to do as the first step is not rooting an android system, but revealing it from the current customized linux system. Rooting is the next step if necessary. If the word choice is still not accurate and bothers you, I apologize.
It has apparently no typical bootloader, and neither PC nor adb recognize it as an android device. In fact, direct USB file transfer is blocked so I need to use Sony's designated software. But an android system surely coexists according to the hacker who already rooted it.
Click to expand...
Click to collapse
Without some kind of way to flash or interface with the device there isn't much you can do.
I have a kindle fire HD that didn't come with a typical android system but does have a typical bootloader. The Amazon OS was removed and now it's full blown android but it required a "second" bootloader. You don't have a bootloader so I'm not sure what your options are with that device.
I DO NOT PROVIDE HELP IN PM, KEEP IT IN THE THREADS WHERE EVERYONE CAN SHARE
Droidriven said:
You must be an iPhone user that isn't familiar with android. Jailbreak in is an Apple thing, not an android thing.
In android it's called "rooting" and it isn't quite the same thing as jailbreaking an Apple device.
This device does not at all seem to be worth the price, especially considering the limitations it has. What a waste of hardware.
I would assume that you could port something from one of those other devices to work on yours but it really depends on how your hardware is designed compared to those devices.
Does your device have a typical bootloader like other android devices?
Is the bootloader unlocked?
If it is locked, can it be unlocked?
Does the device use fastboot or does it have a flash mode that is used with a specific PC flashtool?
If it is unlocked or if you can unlock it and it has a flash mode that can actually be used, you might be able to port a custom recovery from one of the devices you named then use that recovery to somehow root the device. If the device can't install android apps then it would probably involve using adb to root the device.
I DO NOT PROVIDE HELP IN PM, KEEP IT IN THE THREADS WHERE EVERYONE CAN SHARE
Click to expand...
Click to collapse
Jailbreaking is the process of modifying any electronic device in order to remove restrictions imposed by a manufacturer (Apple) or operator (to allow the installation of unauthorized software).
Rooting is the act of gaining access to the root account of a device (such as a smartphone or computer).
There is a huge difference between the two. You can't just say that rooting is Android's version of jailbreaking. Not accurate in the least.
https://www.androidpit.com/jailbreak-android
Sent from my SM-G928T using Tapatalk
MarkBell said:
Jailbreaking is the process of modifying any electronic device in order to remove restrictions imposed by a manufacturer (Apple) or operator (to allow the installation of unauthorized software).
Rooting is the act of gaining access to the root account of a device (such as a smartphone or computer).
There is a huge difference between the two. You can't just say that rooting is Android's version of jailbreaking. Not accurate in the least.
https://www.androidpit.com/jailbreak-android
Sent from my SM-G928T using Tapatalk
Click to expand...
Click to collapse
You're reading too much into what I said.
Basically, what I said was that jailbreaking isn't an android thing, it's an Apple thing(didn't say it was exclusively an Apple thing, just NOT an android thing). It applies to more than just Apple devices but on this website dedicated to mobile platforms, I'm only referring to its application in the mobile device world. For the mobile world it's pretty much only an Apple thing(still not exclusively but mostly so).
Then I said that in the android world it's called rooting(not exclusively an android thing, just NOT an Apple thing). And that jailbreaking and rooting aren't the same thing(this does not say that rooting is android's version of jailbreaking, that would imply that they are the same thing, I'm saying they aren't the same thing)
Basically, explaining what they "aren't", you explained what they "are".
I understand the difference, but thank you.
I DO NOT PROVIDE HELP IN PM, KEEP IT IN THE THREADS WHERE EVERYONE CAN SHARE
Droidriven said:
You're reading too much into what I said.
Basically, what I said was that jailbreaking isn't an android thing, it's an Apple thing(didn't say it was exclusively an Apple thing, just NOT an android thing). It applies to more than just Apple devices but on this website dedicated to mobile platforms, I'm only referring to its application in the mobile device world. For the mobile world it's pretty much only an Apple thing(still not exclusively but mostly so).
Then I said that in the android world it's called rooting(not exclusively an android thing, just NOT an Apple thing). And that jailbreaking and rooting aren't the same thing(this does not say that rooting is android's version of jailbreaking, that would imply that they are the same thing, I'm saying they aren't the same thing)
Basically, explaining what they "aren't", you explained what they "are".
I understand the difference, but thank you.
I DO NOT PROVIDE HELP IN PM, KEEP IT IN THE THREADS WHERE EVERYONE CAN SHARE
Click to expand...
Click to collapse
I tend to read too deeply into everything. It's the way I am. Lol.
Sent from my SM-G928T using Tapatalk
Could you please post some information about usb device? Just like PID & VID.
Do it like:
Connect DPT-RP1 to Linux, and then type this command 'lsusb'
P.S. Under Windows or MacOS system, you can find the information from system settings...
happy to help with simple things
thisvip said:
Could you please post some information about usb device? Just like PID & VID.
Do it like:
Connect DPT-RP1 to Linux, and then type this command 'lsusb'
P.S. Under Windows or MacOS system, you can find the information from system settings...
Click to expand...
Click to collapse
Bus 001 Device 008: ID 054c:0be5 Sony Corp.
It is good to see some people have been interested in this thread.
So far, I realized that the hacker used a hardware hacking method. I actually obtained the hacked system apps from one of his customer. I guess he did sometihng like directly modifying eMMC to root and put "USBDeviceSwitcher.apk" to allow an usual USB connection. Since I don't want to take such risk, I decided to wait until the first firmware to see if there could be an indirect way to penetrate the system files. But if you want to analyze the hacked system, contact me.
sartrism said:
It is good to see some people have been interested in this thread.
So far, I realized that the hacker used a hardware hacking method. I actually obtained the hacked system apps from one of his customer. I guess he did sometihng like directly modifying eMMC to root and put "USBDeviceSwitcher.apk" to allow an usual USB connection. Since I don't want to take such risk, I decided to wait until the first firmware to see if there could be an indirect way to penetrate the system files. But if you want to analyze the hacked system, contact me.
Click to expand...
Click to collapse
Does it have a web browser? Maybe you can utilize for example the Stagefright Exploit + DirtyC0W to get root.
I have found out some interesting stuff about the device with the help of the Digital Paper App.
The app is built using electron and there is a file: /Applications/Digital\ Paper\ App.app/Contents/Resources/app.asar
This file contains the electron javascript files, which handle all the communication with the device.
It can be extracted with: sudo asar extract app.asar output
(github_com/electron/asar)
This also requires node to be installed: with e.g. brew install node (changelog_com/posts/install-node-js-with-homebrew-on-os-x)
The app communicates with the device via Restlet-Framework/2.3.7 on port 8443 with tcp (no matter if it is the bluetooth, wifi or usb connection).
This is the only port that is open.
In the file: /Applications/Digital\ Paper\ App.app/Contents/Resources/output/node_modules/mw-error/lib/codeparams.js you can find all the relative paths, which are getting called during e.g. file transfer, firmware update and stuff.
Running the app and placing breakpoints reveals that before you can transfer files and stuff:
'/auth'
'/auth/nonce/'
are called in order to authenticate, which looks e.g. like url digitalpaper.local:8443/auth/nonce/1e9ee24d-6613-433a-9770-76b04333ac95
the last part of the call is the "client_id": "1e9ee24d-6613-433a-9770-76b04333ac95", which is retrieved via the url digitalpaper.local:8443/auth call.
digitalpaper.local:8443/auth/
Important:
In /Applications/Digital\ Paper\ App.app/Contents/Resources/output/lib/config.js
change the line
config.DEVBUILD = false;
to
config.DEVBUILD = true;
After you finished your modifications you have pack the output folder again:
sudo asar pack output app.asar
I did not have time to continue, but the following relative urls look promising (especially recovery_mode):
'/testmode/auth/nonce',
'/testmode/auth',
'/testmode/launch',
'/testmode/recovery_mode',
'/testmode/assets/{}',
mcplectrum said:
I have found out some interesting stuff about the device with the help of the Digital Paper App.
The app is built using electron and there is a file: /Applications/Digital\ Paper\ App.app/Contents/Resources/app.asar
This file contains the electron javascript files, which handle all the communication with the device.
It can be extracted with: sudo asar extract app.asar output
(github_com/electron/asar)
This also requires node to be installed: with e.g. brew install node (changelog_com/posts/install-node-js-with-homebrew-on-os-x)
The app communicates with the device via Restlet-Framework/2.3.7 on port 8443 with tcp (no matter if it is the bluetooth, wifi or usb connection).
This is the only port that is open.
In the file: /Applications/Digital\ Paper\ App.app/Contents/Resources/output/node_modules/mw-error/lib/codeparams.js you can find all the relative paths, which are getting called during e.g. file transfer, firmware update and stuff.
Running the app and placing breakpoints reveals that before you can transfer files and stuff:
'/auth'
'/auth/nonce/'
are called in order to authenticate, which looks e.g. like url digitalpaper.local:8443/auth/nonce/1e9ee24d-6613-433a-9770-76b04333ac95
the last part of the call is the "client_id": "1e9ee24d-6613-433a-9770-76b04333ac95", which is retrieved via the url digitalpaper.local:8443/auth call.
digitalpaper.local:8443/auth/
Important:
In /Applications/Digital\ Paper\ App.app/Contents/Resources/output/lib/config.js
change the line
config.DEVBUILD = false;
to
config.DEVBUILD = true;
After you finished your modifications you have pack the output folder again:
sudo asar pack output app.asar
I did not have time to continue, but the following relative urls look promising (especially recovery_mode):
'/testmode/auth/nonce',
'/testmode/auth',
'/testmode/launch',
'/testmode/recovery_mode',
'/testmode/assets/{}',
Click to expand...
Click to collapse
Hope you get some result from wifi side. I also realized they use the port 8443 but couldn't get further as you.
For whom trying to hack it, here is the link for the already 'hacked' system apps (including the original files) - that of the famous hacked RP1 video. Inside the subfolder S1, there are also the hacked system apps for DPT-S1 just in case.
https://www.dropbox.com/sh/dvtvokdzrgwjc83/AACXOJA-E56nUpUfiWUOzrM3a?dl=0
George Malas said:
Does it have a web browser? Maybe you can utilize for example the Stagefright Exploit + DirtyC0W to get root.
Click to expand...
Click to collapse
The stock device has no web browser, no sd-card, no usb connection, and no typical system. I think SONY was haunted by some security issues maybe because they thought the major users are lawyers or very important people? lol
Any chance to create a buffer overflow PDF to attack RP1's pdf reader?
I am unable to help, but wanted to let you know I am definitely interested in and supportive of this. If this device can be unlocked as suggested in that one youtube video then I would buy it, despite the steep price.
jess91 said:
I am unable to help, but wanted to let you know I am definitely interested in and supportive of this. If this device can be unlocked as suggested in that one youtube video then I would buy it, despite the steep price.
Click to expand...
Click to collapse
If you're interested and supportive of this then go buy one anyway and apply yourself to going forward figuring out how to get it done. Other than that, you're not supportive, you're just hopeful that someone figures it out and then you'll probably go get one.
DO NOT CONTACT ME VIA PM TO RECEIVE HELP, YOU WILL BE IGNORED. KEEP IT IN THE THREADS WHERE EVERYONE CAN SHARE
Hey guys,
I also recently got the RP1 and am also looking for ways to mod it. Big kudos and thanks to all of you for posting this! This alread is amazing. @sartrism: can you maybe give me a hint how to load the files on the rp1? Sorry if this might be a stupid question but I'm new to adroid and that stuff.
Paderico said:
Hey guys,
I also recently got the RP1 and am also looking for ways to mod it. Big kudos and thanks to all of you for posting this! This alread is amazing. @sartrism: can you maybe give me a hint how to load the files on the rp1? Sorry if this might be a stupid question but I'm new to adroid and that stuff.
Click to expand...
Click to collapse
Just a little update from my side. I'm currently tryng to recreate the steps @mcplectrum was using. It seems that my RP1 also uses other ports. I tried to wireshark the USB and WiFi connection. By that I saw that often GET /registration/information is called for Host: localhost:58052. Moreover the first call is GET /register/serial_number also on port 5808. This was via USB.
Trying to trigger the /auth/ call via Telnet returns nothing unfortunately. But also the 8080 port is open. Trying to call digitalpaper.local:8443/auth/ returns nothing on firefox.
@mcplectrum: how did you get the client_id and what would one need that for?
I also tried to change the config.DEVBUILD to true but that seemed to change nothing at all.
So to sum up what we know:
The device is using some kind of android structure, the source code seems to use the uboot bootloader, all communication is done by a rest restlet framework. So actually there should be some kind of way to use the restlet framework to PUT or POST the modified files.
The other option would be directly flash the eMMC right? I would take the risk and just load it on my device and see what happens. Any hints on how to do that?